Synchronization facility for information domains employing replicas
First Claim
1. A method for synchronizing entries in a replicated storage system, the method comprising:
- invalidating an entry of at least one replica store, wherein the invalidating of the entry of the replica store triggers information synchronization of a corresponding invalidated entry of a master store to a corresponding entry of an authoritative store on a next attempt to authenticate against the invalidated entry of the replica store.
1 Assignment
0 Petitions
Accused Products
Abstract
Mechanisms have been developed for synchronizing information, e.g., password or other access credential information, amongst replicated directory spaces or repositories. In some exemplary realizations, directory spaces are embodied as directory servers, services or similar components of computer operating systems, including LDAP, UDDI, Active Directory or other standardized or proprietary directory environments. In one embodiment in accordance with the present invention, a method includes invalidating an entry of at least one replica store. The invalidation of the entry of the replica store triggers information synchronization of a corresponding invalidated entry of a master store to a corresponding entry of an authoritative store on a next attempt to authenticate against the invalidated entry of the replica store. The method may include propagating information of the synchronized master store entry to at least one other replica store.
61 Citations
41 Claims
-
1. A method for synchronizing entries in a replicated storage system, the method comprising:
-
invalidating an entry of at least one replica store, wherein the invalidating of the entry of the replica store triggers information synchronization of a corresponding invalidated entry of a master store to a corresponding entry of an authoritative store on a next attempt to authenticate against the invalidated entry of the replica store. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21)
-
-
22. A computer system comprising:
-
a master store; and
at least one replica store, wherein the master store pushes invalidation information from the master store to the replica store. - View Dependent Claims (23, 24, 25, 26)
-
- 27. A computer program product executable to synchronize information stored in a replica store with that stored in a master store, wherein the master store synchronizes with an authoritative store in response to an invalidity indication for an entry of the master store and based at least in part on information received from the replica store.
- 30. A computer program product executable to synchronize information stored in a replica store with that stored in a master store, wherein the replica store authenticates at a master store in response to an invalidity indication for an entry of the replica store.
-
35. A synchronization facility comprising:
-
a detector of an invalidated entry of a replica store; and
an authenticator that chains to a master store authentication requests corresponding to invalidated entries of the replica store. - View Dependent Claims (36, 37, 38, 39)
-
-
40. An apparatus comprising:
-
a replica store;
means for synchronizing an invalidated entry of a replica store to an entry of an authoritative store that employs a different protective transform than the replica store. - View Dependent Claims (41)
-
Specification